HIGH8.5CVE-2021-39144⚠ KEVXStream is vulnerable to a Remote Command Execution attack from 0, < 1.4.18
CRITICAL9.8CVE-2019-10173Deserialization of Untrusted Data and Code Injection in xstream >= 1.4.10, < 1.4.11
CRITICAL9.8Command Injection in Xstream
from 0, < 1.4.7
HIGH8.5libxstream-java - security update
from 0, < 1.4.18
HIGH8.5XStream is vulnerable to an Arbitrary Code Execution attack
from 0, < 1.4.18
HIGH8.5XStream is vulnerable to an Arbitrary Code Execution attack
from 0, < 1.4.18
HIGH8.5XStream is vulnerable to an Arbitrary Code Execution attack
from 0, < 1.4.18
HIGH8.5XStream is vulnerable to an Arbitrary Code Execution attack
from 0, < 1.4.18
HIGH8.5XStream is vulnerable to an Arbitrary Code Execution attack
from 0, < 1.4.18
HIGH8.5XStream is vulnerable to an Arbitrary Code Execution attack
from 0, < 1.4.18
HIGH8.5A Server-Side Forgery Request can be activated unmarshalling with XStream to access data streams from an arbitrary URL referencing a resource in an intranet or the local host
from 0, < 1.4.18
HIGH8.5XStream is vulnerable to an Arbitrary Code Execution attack
from 0, < 1.4.18
HIGH8.5A Server-Side Forgery Request can be activated unmarshalling with XStream to access data streams from an arbitrary URL referencing a resource in an intranet or the local host
from 0, < 1.4.18
HIGH8.5XStream is vulnerable to an Arbitrary Code Execution attack
from 0, < 1.4.18
HIGH8.5XStream is vulnerable to an Arbitrary Code Execution attack
from 0, < 1.4.18
HIGH8.2libxstream-java - security update
from 0, < 1.4.20
HIGH8.0libxstream-java - security update
from 0, < 1.4.14-java7
HIGH7.5XStream is vulnerable to a Denial of Service attack due to stack overflow from a manipulated binary input stream
from 0, < 1.4.21
HIGH7.5XStream can cause a Denial of Service by injecting deeply nested objects raising a stack overflow
from 0, < 1.4.20
HIGH7.5libxstream-java - security update
from 0, < 1.4.19
HIGH7.5libxstream-java - security update
from 0, < 1.4.17
HIGH7.5libxstream-java - security update
from 0, < 1.4.16
HIGH7.5libxstream-java - security update
from 0, < 1.4.10
HIGH7.5libxstream-java - security update
from 0, < 1.4.9
MEDIUM6.8XStream vulnerable to an Arbitrary File Deletion on the local host when unmarshalling
from 0, < 1.4.15
MEDIUM6.5XStream can cause a Denial of Service
from 0, < 1.4.18
MEDIUM6.3libxstream-java - security update
from 0, < 1.4.15
MEDIUM6.1A Server-Side Forgery Request can be activated unmarshalling with XStream to access data streams from an arbitrary URL referencing a resource in an intranet or the local host
from 0, < 1.4.16
MEDIUM6.1XStream is vulnerable to an Arbitrary Code Execution attack
from 0, < 1.4.16
MEDIUM6.1XStream is vulnerable to an Arbitrary Code Execution attack
from 0, < 1.4.16
MEDIUM5.8XStream is vulnerable to a Remote Command Execution attack
from 0, < 1.4.16
MEDIUM5.4XStream is vulnerable to an Arbitrary Code Execution attack
from 0, < 1.4.16
MEDIUM5.3XStream is vulnerable to an Arbitrary Code Execution attack
from 0, < 1.4.16
MEDIUM5.3XStream is vulnerable to an attack using Regular Expression for a Denial of Service (ReDos)
from 0, < 1.4.16
MEDIUM5.3XStream is vulnerable to an Arbitrary Code Execution attack
from 0, < 1.4.16
MEDIUM5.3XStream is vulnerable to an Arbitrary File Deletion on the local host when unmarshalling as long as the executing process has sufficient rights
from 0, < 1.4.16
MEDIUM5.3A Server-Side Forgery Request can be activated unmarshalling with XStream to access data streams from an arbitrary URL referencing a resource in an intranet or the local host
from 0, < 1.4.16